Recommendations

ERR00-A. Adopt and implement a consistent error handling policy

ERR01-A. Use ferror() rather than errno to check for any accumulated error

Rules

ERR30-C. Set errno to zero before calling a function, and use it only after the function returns a value indicating failure

ERR31-C. Don't redefine errno

ERR32-C. Do not rely on indeterminate values of errno

ERR33-C. Only examine the value of errno when it is indicated to be valid by a function's return value

Risk Assessment Summary

Recommendation

Severity

Likelihood

Remediation Cost

Priority

Level

ERR00-A

2 (medium)

2 (probable)

2 (medium)

P8

L2

ERR01-A

3 (high)

3 (likely)

1 (high)

P9

L2

Rule

Severity

Likelihood

Remediation Cost

Priority

Level

ERR30-C

1 (low)

1 (unlikely)

3 (low)

P3

L3

ERR31-C

1 (low)

1 (unlikely)

3 (low)

P3

L3

ERR32-C

1 (low)

1 (unlikely)

3 (low)

P3

L3

ERR33-C

1 (low)

1 (unlikely)

1 (high)

P1

L3

Related Rules and Recommendations


SIG33-C. Do not recursively invoke the raise() function      12. Signals (SIG)